Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33352e302f32342d3234203d3e2037343138.roa
File: 3230302e32392e33352e302f32342d3234203d3e2037343138.roa (raw, json)
Hash identifier: nII9D8tx2san9jQ6qelROc+AsEGO4WnqRfpZphIwR8g=
Subject key identifier: 99:21:90:65:5A:85:93:A4:97:51:AA:E2:5A:F5:EA:3A:4B:81:BA:77
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 5A7C5AC65B79722F540453D24AA145AFCDA62CAC
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33352e302f32342d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:29:46 +0000
ROA not before: Tue 04 Feb 2025 18:24:46 +0000
ROA not after: Tue 03 Feb 2026 18:29:46 +0000
asID: 7418
IP address blocks: 200.29.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 12:41:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:7c:5a:c6:5b:79:72:2f:54:04:53:d2:4a:a1:45:af:cd:a6:2c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:46 2025 GMT
Not After : Feb 3 18:29:46 2026 GMT
Subject: CN=992190655A8593A49751AAE25AF5EA3A4B81BA77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c3:06:cd:fe:15:ab:45:14:9b:21:b2:e8:dc:
5d:c4:1c:b9:91:b3:66:db:43:4a:a8:8c:fb:36:1b:
d4:b2:3c:98:ac:d9:06:2f:ef:b9:d7:9b:e3:c3:fc:
34:3d:2a:41:cd:ea:22:9f:6a:45:ae:eb:09:4e:65:
98:e9:56:ac:79:80:49:32:0a:2f:6d:18:86:86:25:
62:84:19:fc:17:68:e9:34:ab:da:fb:5c:3b:c5:2c:
c5:15:eb:2b:89:25:56:8e:fb:13:e0:30:e5:cf:7d:
44:e7:98:1d:80:d4:6b:9c:1c:b1:c2:43:9d:86:38:
75:c8:d5:b1:0c:ce:62:53:32:87:be:9a:7e:7c:c7:
17:5c:fd:83:88:74:c9:19:f2:4b:3b:60:a8:09:1f:
38:1e:73:ba:93:a7:82:c2:bc:2f:bd:81:61:92:ac:
ee:a8:54:89:da:08:89:bb:d8:6a:f1:6c:34:38:dc:
df:97:1b:f7:8b:5d:0a:3a:20:22:7e:fb:42:f4:f3:
1b:29:1e:30:7a:fa:5e:c5:54:3d:ff:f4:14:f3:1d:
66:fd:b4:b2:26:b9:ce:9d:72:22:16:8c:44:65:5e:
93:ce:7c:da:28:19:a3:21:d7:e8:ee:59:31:65:9c:
bd:f6:71:de:82:c7:7e:3e:8f:f7:44:09:f8:87:aa:
ba:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:21:90:65:5A:85:93:A4:97:51:AA:E2:5A:F5:EA:3A:4B:81:BA:77
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33352e302f32342d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.35.0/24
Signature Algorithm: sha256WithRSAEncryption
79:87:75:66:f5:66:5a:5c:aa:a3:d1:d6:0e:a5:21:7c:24:4a:
08:0c:02:f8:08:25:b9:4a:f6:f3:e0:01:a8:d4:ac:f6:cd:21:
5f:96:5d:41:01:54:04:6f:07:c9:48:61:44:74:49:26:42:00:
bd:e4:37:86:2e:95:15:ff:35:fc:06:14:de:73:c5:7b:01:97:
26:23:2c:21:bd:6f:b6:d3:78:34:56:95:55:1d:05:7c:d6:cf:
a6:83:53:13:9b:2b:45:c4:95:f3:1a:64:3e:dd:0d:7d:7e:ec:
09:52:e1:8b:1e:0c:97:5c:21:32:84:71:fd:4e:08:f8:33:14:
d7:4d:e1:ac:62:c6:ce:22:ba:b8:2f:d6:e8:47:cf:f3:80:00:
66:23:ce:6e:7d:cf:66:45:38:8e:84:50:64:04:44:94:16:f4:
92:6f:82:e9:a8:bb:43:39:8e:9d:57:54:d7:84:f6:ee:c8:94:
ba:aa:c3:20:17:05:5b:14:21:42:37:b1:b6:7f:ef:d2:51:8d:
56:d1:58:ae:9d:a8:c7:88:ca:31:81:d4:a3:fa:f8:86:23:cb:
d2:6c:f8:ae:7b:42:7b:d4:bb:c4:7b:02:e1:94:34:1b:12:cf:
3a:2e:1a:01:0c:2a:43:34:57:37:a6:10:6e:f0:d3:02:cb:83:
c9:3c:2d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 07:13:51 2025 by rpki-client